FISMA Compliance Lead
FISMA Compliance Lead
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
Job Title: FISMA Compliance Lead
Location: Primarily Remote (occasional on-site presence may be required)
Clearance Requirement: Public Trust (U.S. Citizenship required)
Position Type: Full-Time (CATTS Task Order Support)
About the Client:
The U.S. Department of Commerce (DOC) drives trade innovation and economic growth and is the federal champion of the digital economy. Within DOC the International Trade Administration (ITA) supports U.S. businesses in the global market through promotion of exports and foreign investment. ITAs Office of the Chief Information Officer (OCIO) delivers secure efficient and scalable IT solutions aligned with DOCs modernization strategy.
Project Overview:
Under the Commerce Acquisition for Transformational Technology Services (CATTS) initiative this position supports the ITAs Office of Systems Development (OSD). The mission is to operate and evolve IT infrastructure by adopting cloud-based services and improving service delivery. The FISMA Compliance Lead will play a critical role in this transformation by overseeing and executing FISMA-related compliance efforts ensuring adherence to federal cybersecurity regulations and supporting secure IT modernization.
Position Summary:
The FISMA Compliance Lead will be responsible for overseeing and managing all activities related to FISMA (Federal Information Security Modernization Act) compliance for the ITA. This includes directing compliance staff managing required reporting interfacing with DOC stakeholders and ensuring alignment with FedRAMP and broader federal cybersecurity mandates.
Key Responsibilities:
- Lead and supervise FISMA compliance personnel in developing reviewing and maintaining security documentation.
- Stay current with FedRAMP policies and federal compliance requirements.
- Manage quarterly and annual FISMA reporting across the fiscal year.
- Coordinate collection and consolidation of performance metrics across cross-functional teams.
- Act as liaison between DOC and ITA for all FISMA-related tasks data calls and reporting.
- Communicate regularly with government points of contact (POCs) and compliance teams to provide updates on FISMA status.
- Participate in recurring meetings:
- Weekly Contractor Status Meetings
- Weekly ITA Data Call Meetings
- Weekly FISMA Performance Improvement Working Group Meetings
- Monthly DOC/ITA Cyber Liaison Meetings
- Track compliance activities in the Cyber Security Assessment and Management (CSAM) system and generate performance reports.
- Monitor and support supply chain risk assessments tied to cybersecurity operations.
Minimum Requirements:
- Citizenship: U.S. Citizenship required.
- Clearance: Must be eligible for and able to obtain a Public Trust clearance.
- Education: Bachelors degree or higher in Cybersecurity or a related field.
- Experience: Minimum of 10 years of experience in federal FISMA compliance work.
Preferred Qualifications:
- Certifications:
- ISC Certified in Governance Risk and Compliance (CGRC; formerly CAP)
- Certified Cloud Security Professional (CCSP)
- Certified Information Systems Security Professional (CISSP)
- Experience in Agile or Project Management methodologies.
- Familiarity with CSAM and FedRAMP documentation and systems.
- Strong coordination communication and reporting skills.
Place of Performance:
Support for this requirement will primarily be remote (telework). However as directed by the COR or CRD Director the Contractor may be required to report to the Herbert C. Hoover Building located at 14th & Constitution Ave. NW Washington DC 20230.
Employment Type
Full-time
